Improper Encryption Handling in Frontend Admin Plugin for WordPress by DynamiApps
CVE-2024-3729

9.8CRITICAL

Key Information:

Vendor: Wordpress
Status: Frontend Admin By Dynamiapps
Vendor: CVE Published:; 2 May 2024

Summary

The Frontend Admin plugin by DynamiApps for WordPress is subject to a vulnerability that arises from improper handling of encryption exceptions in the 'fea_encrypt' function across all versions up to and including 3.19.4. This design flaw allows unauthorized attackers to exploit user-form processing, resulting in the potential for privilege escalation through unauthorized user creation or editing. Additionally, this vulnerability facilitates automatic user logins, creating opportunities for authentication bypass and enabling the injection of arbitrary web scripts into post-processing forms. The exploitation of this vulnerability depends on the 'openssl' PHP extension being omitted from the server configuration.

Affected Version(s)

Frontend Admin by DynamiApps * <= 3.19.4

References

https://www.wordfence.com/threat-intel/vulnerabilities/id...

https://plugins.trac.wordpress.org/browser/acf-frontend-f...

https://plugins.trac.wordpress.org/changeset/3073379/acf-...

CVSS V3.1

Score:

9.8

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
May 2, 2024
Vulnerability Reserved
Apr 12, 2024

Credit

István Márton